Security News
Cloudflare Adds Security.txt Setup Wizard
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
browser-module-sandbox
Advanced tools
browser editor for code that gets 'compiled' on the server with node and run on the client
editor for code that gets 'compiled' on the server with node and then sent back and executed on the client.
there are two "panes", one is a codemirror editor pane and other is a display pane that shows the output (if any) of the program. there is also a built in toolbar UI widget for switching between the two states
for an example go see the voxel-gist project
to compile the dependencies on the server you should run an instance of snuggie
npm install browser-module-sandbox
var sandbox = require('browser-module-sandbox')
you need to give it dom elements as targets that it will use to to render itself. output
and editor
for the two "panes" that get turned on and off based on the state of control
.
var sandbox = sandbox({
snuggieAPI: 'http://localhost:8000', // defaults to the current browser domain root
defaultCode: "var foo = require('foo')", // defaults to 'var url = require("url")'
output: document.querySelector('#output'),
controls: document.querySelector('#controls'),
editor: document.querySelector('#edit'),
})
these fire when the output pane is activated. the sandbox will emit bundleStart
, upload the contents of the editor to the server, and then when it receives and renders them will emit bundleEnd
this fires when the edit button is clicked, which also switches back to the editor
BSD
FAQs
uses browserify-cdn to run node code in an iframe
The npm package browser-module-sandbox receives a total of 31 weekly downloads. As such, browser-module-sandbox popularity was classified as not popular.
We found that browser-module-sandbox demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.
Security News
ENISA’s 2024 report highlights the EU’s top cybersecurity threats, including rising DDoS attacks, ransomware, supply chain vulnerabilities, and weaponized AI.